From cea718b4517b1da97a98c2696831021faaadc892 Mon Sep 17 00:00:00 2001 From: User Date: Wed, 16 Mar 2022 00:00:50 -0500 Subject: [PATCH] Action to identify keys used in various file types --- src/minisign.c | 43 +++++++++++++++++++++++++++++++++++++++++-- src/minisign.h | 1 + 2 files changed, 42 insertions(+), 2 deletions(-) diff --git a/src/minisign.c b/src/minisign.c index 83672da..e5e0d45 100644 --- a/src/minisign.c +++ b/src/minisign.c @@ -18,9 +18,9 @@ #include "minisign.h" #ifndef VERIFY_ONLY -static const char *getopt_options = "GSVRHhc:flm:oP:p:qQs:t:vx:"; +static const char *getopt_options = "GSVkRHhc:flm:oP:p:qQs:t:vx:"; #else -static const char *getopt_options = "VhHm:oP:p:qQvx:"; +static const char *getopt_options = "VkhHm:oP:p:qQvx:"; #endif static void usage(void) __attribute__((noreturn)); @@ -48,6 +48,7 @@ usage(void) "-S sign files\n" #endif "-V verify that a signature is valid for a given file\n" + "-k print the key_id of the other key file, signature, or signed file parameters\n" "-l sign using the legacy format\n" "-m file to sign/verify\n" "-o combined with -V, output the file content after verification\n" @@ -783,10 +784,12 @@ main(int argc, char **argv) unsigned char opt_seen[16] = { 0 }; int opt_flag; int quiet = 0; + int count = 0; int output = 0; int force = 0; int allow_legacy = 1; int sign_legacy = 0; + int sk_file_flag = 0; Action action = ACTION_NONE; while ((opt_flag = getopt(argc, argv, getopt_options)) != -1) { @@ -817,6 +820,12 @@ main(int argc, char **argv) } action = ACTION_VERIFY; break; + case 'k': + if (action != ACTION_NONE && action != ACTION_IDENTIFY) { + usage(); + } + action = ACTION_IDENTIFY; + break; #ifndef VERIFY_ONLY case 'c': comment = optarg; @@ -855,6 +864,7 @@ main(int argc, char **argv) case 's': free(sk_file); sk_file = xstrdup(optarg); + sk_file_flag = 1; break; case 't': trusted_comment = optarg; @@ -924,6 +934,35 @@ main(int argc, char **argv) } return verify(pubkey_load(pk_file, pubkey_s), message_file, sig_file, quiet, output, allow_legacy); + case ACTION_IDENTIFY: + if (pk_file != NULL || pubkey_s != NULL) { + PubkeyStruct *pubkey_struct = pubkey_load(pk_file, pubkey_s); + fprintf(stdout, "%" PRIX64 "\n", le64_load(pubkey_struct->keynum_pk.keynum)); + count++; + } +#ifndef VERIFY_ONLY + if (sk_file_flag) { + SeckeyStruct *seckey_struct = seckey_load(sk_file); + fprintf(stdout, "%" PRIX64 "\n", le64_load(seckey_struct->keynum_sk.keynum)); + count++; + } +#endif + if (message_file != NULL) { + sig_file = append_sig_suffix(message_file); + } + if (sig_file != NULL) { + char trusted_comment[TRUSTEDCOMMENTMAXBYTES]; + unsigned char global_sig[crypto_sign_BYTES]; + int hashed; + + SigStruct *sig_struct = sig_load(sig_file, global_sig, &hashed, trusted_comment, sizeof trusted_comment); + fprintf(stdout, "%" PRIX64 "\n", le64_load(sig_struct->keynum)); + count++; + } + if (count == 0) { + usage(); + } + return 0; default: usage(); } diff --git a/src/minisign.h b/src/minisign.h index 3144656..5ae37e9 100644 --- a/src/minisign.h +++ b/src/minisign.h @@ -58,6 +58,7 @@ typedef enum Action_ { ACTION_GENERATE, ACTION_SIGN, ACTION_VERIFY, + ACTION_IDENTIFY, ACTION_RECREATE_PK } Action;